Description

The Konqueror browser allows websites to load webpages into a target
frame of any other open frame-based webpage

Impact

An attacker could exploit these vulnerabilities to create or overwrite
files with the permissions of another user, compromise the account of users
running a KDE application and insert arbitrary frames into an otherwise
trusted webpage.

Workaround

There is no known workaround at this time. All users are encouraged to
upgrade to the latest available version of kdebase.

Resolution

All KDE users should upgrade to the latest versions of kdelibs and kdebase: